Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
File: KUJPgsfIL8VJlTLlpmUadPYpxao.mft (raw, json)
Hash identifier: Wbq/gZi5G+ZIE1snMLFs+Lk0uANf7k7eSmNPLPmK+C4=
Subject key identifier: 1B:0C:F9:2B:3C:97:D2:C2:79:9A:0E:5F:B3:8A:34:51:97:97:9B:C4
Authority key identifier: 29:42:4F:82:C7:C8:2F:C5:49:95:32:E5:A6:65:1A:74:F6:29:C5:AA
Certificate issuer: /CN=29424f82c7c82fc5499532e5a6651a74f629c5aa
Certificate serial: 0199FEB4F76B1717A5441D358992A4A81E4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
Manifest number: 0ABD
Signing time: Sun 19 Oct 2025 23:01:36 +0000
Manifest this update: Sun 19 Oct 2025 23:01:36 +0000
Manifest next update: Mon 20 Oct 2025 23:01:36 +0000
Files and hashes: 1: KUJPgsfIL8VJlTLlpmUadPYpxao.crl (hash: zQLTtIW6t2ha8Liavuh6pDyWhHlNDvzVUkRoYQ4btn0=)
2: LS-HothqHRCTuBvSVWWtxn5KyKw.roa (hash: zR/tQekUL1A1uk0QT0EdSKoyCKZ/CYUa+IvE8FHcE34=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.crl
rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:b4:f7:6b:17:17:a5:44:1d:35:89:92:a4:a8:1e:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29424f82c7c82fc5499532e5a6651a74f629c5aa
Validity
Not Before: Oct 19 23:01:36 2025 GMT
Not After : Oct 20 23:01:36 2025 GMT
Subject: CN=1b0cf92b3c97d2c2799a0e5fb38a345197979bc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0c:79:96:6e:30:05:3a:2d:1a:5c:d2:07:5f:
18:c8:49:6e:df:dc:fd:4d:9e:3a:25:0b:db:6a:39:
48:49:79:dc:48:50:03:d2:39:ba:93:d6:9b:81:4a:
38:5e:04:00:cf:9f:44:7c:91:f9:25:35:3a:de:24:
92:95:88:58:f7:29:68:e6:b8:cd:2b:94:7c:19:41:
6f:43:9d:56:9d:65:1d:da:a1:36:ae:7a:f3:e2:16:
bf:10:3b:7e:78:ab:ac:0e:28:c8:a7:0d:88:af:ec:
7e:b9:66:52:9c:b4:93:c6:6b:8f:d8:e4:1c:38:d7:
5b:58:c7:28:30:5e:49:72:53:3c:9f:6b:8a:c3:34:
81:0e:54:72:7f:90:08:28:bf:1e:45:94:ac:e9:0b:
8c:42:0d:8d:29:8c:d2:23:1b:b2:8b:5a:52:09:47:
99:d2:1c:90:d2:90:34:dd:1f:d9:13:5b:a4:16:6c:
ed:17:36:ac:73:34:d0:8a:21:74:9a:c0:7d:65:77:
4a:cc:ad:ac:21:a1:17:0e:e2:7b:d1:3e:05:cf:4f:
be:a5:37:d4:3a:1f:d5:8d:e6:30:6b:f2:9f:74:67:
fc:7f:93:6c:db:65:82:da:4b:eb:f7:35:7e:15:ad:
1c:cc:44:c7:3d:cc:dc:c1:29:17:f7:75:a6:52:1a:
d6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:0C:F9:2B:3C:97:D2:C2:79:9A:0E:5F:B3:8A:34:51:97:97:9B:C4
X509v3 Authority Key Identifier:
keyid:29:42:4F:82:C7:C8:2F:C5:49:95:32:E5:A6:65:1A:74:F6:29:C5:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUJPgsfIL8VJlTLlpmUadPYpxao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/2f6652-7466-4a16-83da-c1f1a0e497cc/1/KUJPgsfIL8VJlTLlpmUadPYpxao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:1a:ff:7d:fb:18:01:72:b6:69:66:a8:25:8b:a6:f1:8b:dc:
d6:19:44:f7:59:3f:91:ca:c9:ee:25:c7:b1:66:0e:70:84:49:
49:ff:dc:e1:69:52:48:60:bb:24:f7:6d:3e:6c:d5:75:0c:d4:
64:9a:89:78:7b:36:6c:37:81:a0:19:44:38:6b:38:45:11:b6:
a1:e9:0a:21:ce:93:33:0d:6d:ad:e1:3e:25:cb:e6:0d:23:b0:
a6:2f:94:3a:d9:02:23:19:ec:13:ab:32:a6:99:98:6a:9c:50:
55:c5:26:31:b6:fc:52:ba:e6:e9:73:b3:12:cf:67:ec:7a:86:
42:1e:68:fd:6e:b3:d3:04:c8:b1:46:4e:ad:7a:a6:02:c5:da:
ff:b0:cb:2f:89:88:2a:8f:b1:18:9a:71:d4:3a:8e:39:12:cb:
9d:f4:da:cf:70:20:41:4f:d4:69:e9:37:07:a2:77:95:fe:dd:
49:f5:3e:ca:a9:a2:0f:f3:74:b0:66:ff:2b:e0:d8:96:69:54:
37:e5:13:3c:3e:45:32:d4:97:8e:3c:d1:af:a5:3c:a3:8d:22:
67:bc:66:5a:93:ff:d8:af:ef:71:a9:da:0b:8a:50:3b:32:b7:
1e:60:92:42:8a:88:94:31:2f:95:44:ed:b4:8c:f6:dc:b2:64:
c0:89:71:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 02:07:50 2025 by rpki-client